MAL-2025-48656

See a problem?
Import Source
https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/dhpgemrdhs79029/MAL-2025-48656.json
JSON Data
https://api.osv.dev/v1/vulns/MAL-2025-48656
Published
2025-10-26T19:03:27Z
Modified
2025-12-02T10:02:53.259270Z
Summary
Malicious code in dhpgemrdhs79029 (npm)
Details

The package dhpgemrdhs79029 was found to contain malicious code.


-= Per source details. Do not edit below this line.=-

Database specific
{
    "malicious-packages-origins": [
        {
            "sha256": "1be9b7e612d9b634011fcb8eaa0806721df3186f2952415590f700f3cd310894",
            "id": "RLMA-2025-05750",
            "import_time": "2025-12-02T09:09:45.958451185Z",
            "modified_time": "2025-12-01T13:08:03Z",
            "versions": [
                "1.250727.10942",
                "1.250727.10944",
                "1.250729.11113",
                "1.250821.11342",
                "1.250910.11845",
                "1.250917.11522",
                "1.250924.11155",
                "1.251006.11432",
                "1.251009.11012"
            ],
            "source": "reversing-labs"
        }
    ]
}
References
Credits

Affected packages

npm / dhpgemrdhs79029

Package

Affected ranges

Type
SEMVER
Events
Introduced
0Unknown introduced version / All previous versions are affected

Affected versions

1.*
1.250727.10942
1.250727.10944
1.250729.11113
1.250821.11342
1.250910.11845
1.250917.11522
1.250924.11155
1.251006.11432
1.251009.11012

Database specific

source
"https://github.com/ossf/malicious-packages/blob/main/osv/malicious/npm/dhpgemrdhs79029/MAL-2025-48656.json"